Brochure
Next-Generation Firewall
Connect and protect your people
and their data throughout your
enterprise network.
Forcepoint
Next-Generation Firewall
The most secure and efficient enterprise firewall—
centrally managed, always on & relentless
Forcepoint Next-Generation Firewall (NGFW) connects and protects people and the data they use throughout the enterprise network—all with the greatest efficiency, availability and security. Trusted by thousands of customers around the world, Forcepoint network security solutions enable businesses, government agencies and other organizations to address critical issues efficiently and economically.
Forcepoint network security solutions are seamlessly and centrally managed, whether physical, virtual or in the cloud. Administrators can deploy, monitor and update thousands of firewalls, VPNs and IPSs in minutes, all from a single console—cutting network operating expenses by as much as 50%. Advanced clustering for firewalls and networks eliminates downtime, and administrators can rapidly map business processes into strong, accurate controls to block advanced attacks, prevent data theft and properly manage encrypted traffic—
all without compromising performance.
Firewall and IPS Together
› Not only did Forcepoint Next-Gen Firewall receive the top score for security in many of the CyberRatings.
org’s Enterprise Firewall category tests, it also has one of the top- rated intrusion prevention systems (IPS) built-in. There’s no need for additional licenses or using separate tools to implement powerful antiintrusion policies.
Stopping Breaches & Theft
› Forcepoint has been a Visionary in Gartner’s Magic Quadrant for enterprise firewalls for four years.
It provides a wide range of advanced access controls and deep inspection capabilities to protect against advanced threats that lead to breaches and theft of critical data or intellectual property.
› As the pioneer in detecting Advanced Evasion Techniques (AETs) that often precede modern attacks, Forcepoint Next-Gen Firewall disrupts attackers’
attempts to sneak in malicious code, spots anomalies, and prevents attempts to exploit vulnerabilities within the network.
Connectivity
Availability Visibility
“We saw an opportunity to combine
router and advanced firewall capabilities to strengthen security across every
site and accelerate throughput. We needed a solution with centralized administration that could be easily
replicated every time we added a new mobile site, easing the management burden on our IT staff.”
— Christophe Hazeman, Head of IT Production, Carglass
CyberRatings.org NGFW Recommended
2021
with #1 scoresOperational Efficiency that Cuts Your TCO Burden
Forcepoint Next-Gen Firewall is designed specifically to cut the complexity and time needed to get your network running smoothly and securely—and keep it there. Analysts suggest that 80% of IT total cost of ownership (TCO) occurs after the initial purchase.1 Overburdened network operations teams constantly have to deal with deploying new firewalls, monitoring network activity, updating policies, upgrading software and responding to incidents.
The Next-Gen Firewall is built around a unified software core that provides consistent capabilities, acceleration and centralized management across all types of deployments.
The Security Management Center (SMC) can configure, monitor, and update up to 2000 Forcepoint Next-Gen Firewall appliances—physical, virtual, and cloud—all from a single pane of glass.
Zero-Touch Deployment
Save time and money by deploying Forcepoint Next-Gen Firewall to remote offices and branch locations without an on-site technician. Devices can
Smart Policies, 1-Click Updates
Forcepoint’s Smart Policies express your business processes in familiar terms such as: users, applications, locations and more. Easy grouping replaces
Faster Incident Response
The SMC makes it easy to visualize and analyze what’s happening throughout your network. Network admins can interactively drill into the corresponding data to rapidly
70%
Faster to Deploy Firewalls253%
Less IT Staff Tiime Spent273%
Faster Incident Response2Forcepoint Next-Gen Firewall is Designed Specifically to Deliver Low Cost of Ownership
Hardware
Subscription & Licenses Support
Uniform Solution – Physical, Virtual, Cloud Built in IPS, VPN, Next-Gen Firewall, Proxies Zero-Touch Deployment
High Availability at Every Level
SD-WAN Control with Low-Cost Broadband Central Management, One-Click Deployment Upgradable Software
Reusable Appliances
Control access by application & version
How Forecepoint
Cuts Invisible Costs
38%
Fewer Outages270%
Less Planned Maintenance2High Availability that Eliminates Network Downtime
Forcepoint Next-Gen Firewall is designed from the ground up to always stay on, even when bad things happen. Resilience (the ability to handle machines going offline or cables getting cut) is built in at every level: firewalls, networks and management. Forcepoint Next-Gen Firewall eliminates downtime to improve your business continuity and keep the business running smoothly.
Advanced Firewall Clustering that Stays Running
Deploy Forcepoint Next-Gen Firewall together in groups (not just pairs) called clusters to keep the network running even if there’s a service interruption in any of the individual devices. You can even mix different models together to extend the lifetime of your current devices.
Multi-ISP Secure SD-WAN Clustering
Forcepoint is one of the pioneers in clustering different network links together.
Multi-Link VPN technology makes it easy to simultaneously mix commercial broadband links and dedicated leased lines to eliminate single points of failure, reduce networking costs, increase capacity, and improve quality of service.
Zero-Downtime Updates
& Software Upgrades
With Forcepoint Next-Gen Firewall, update firewall security policies without going offline, respond immediately to security incidents without compromising connectivity, and upgrade device software seamlessly—
without waiting for service windows or dropping any packets.
Resilient Management
Forcepoint Security Management Center (SMC) enables you to use multiple servers together to continue administering your network and investigating incidents, even if the primary server goes offline.
Forcepoint Next-Gen Firewall is ranked #1 for security in many of cyberratings.org Enterprise Firewall category tests.
Unrivaled Security that Slashes Theft, Not Performance
Forcepoint Next-Gen Firewall is ranked #1 for security in many of the cyberratings.org tests of the Enterprise Firewalls category. It comes with a wide range of built-in security capabilities (including VPN, IPS, Next-Gen Firewall, and security proxies), freeing you from having to juggle different products, allocate licenses or perform administrative chores in multiple places. You can even repurpose security appliances into different roles, extending the lifetime of your infrastructure.
With Forcepoint Security Management Center (SMC), you can apply different types of security techniques to each connection, such as: by application, by organization, by location, or by a variety of other factors—all without sacrificing networking performance.
Control of encrypted raffic—with privacy
With Forcepoint Next-Gen Firewall, painlessly handle the rapid shift to encrypted transmissions for both incoming and outgoing traffic. Using accelerated decryption, inspect HTTPS and other SSL/TLS-based protocols to deny or allow specific HTTP commands or URL segments inside HTTPS—even in virtualized or cloud deployments. Forcepoint Next-Gen Firewall SSH security proxy gives you advanced control for mission- critical applications. In addition, Smart Policies make it easy to comply with emerging privacy laws and internal practices, preventing the exposure of personally identifiable information (PII) as users communicate with their banks, insurance companies or other sensitive sites.
Sandboxing and Advanced Malware Detection Forcepoint Next-Gen Firewall applies multiple scanning techniques to files found in network traffic, including reputation vetting, built-in anti-malware scanning and using Forcepoint Advanced Malware Detection service. This powerful, cloudbased system uses industry-leading sandboxing and other analytical techniques to examine the behavior of files and
69%
Fewer Security Breaches2 Fewer Cyberattacks86%
2Strong protection against intrusions
Forcepoint is the pioneer in defending against Advanced Evasion Techniques (AETs). Our full protocol normalization of traffic disrupts attackers’ attempts to sneak in malicious code, spots anomalies and prevents attempts to exploit vulnerabilities within your network.
Protection of mission-critical apps
Forcepoint Next-Gen Firewall comes with the ability to provide proxybased protection with full inspection of traffic for missioncritical applications that communicate over encrypted HTTPS connections. This technology originates from our Sidewinder firewalls that are depended upon in many of the most sensitive networks on the planet. It extends our unique proxy capabilities even further, giving admins the ability to control HTTPS traffic, allowing or blocking particular URLs or types of HTTPS requests.
Consolidated security—integrated URL filtering Forcepoint Next-Gen Firewall provides a fast, flexible way to enforce web access policies for compliance and block access to phishing sites, as well as malicious or undesirable content.
Forcepoint ThreatSeeker Intelligence cloud service provides an extensive, continually updated categorization of URLs that can be used directly within access policies, to provide dynamic control over which users are allowed to access which sites.
Business transformation—moving enterprise applications to the cloud
Forcepoint Next-Gen Firewall provides protection for workloads running in AWS and Azure clouds. Forcepoint Next-Gen Firewall can be deployed directly from the cloud marketplaces while managed from an existing SMC system. This helps organizations protect their applications and other workloads in the cloud with the same industry-leading security and connectivity they have in their internal data centers, offices, stores and branch locations, and other cloud environments.
Endpoint whitelisting and blacklisting application control
Endpoint Context Agent provides whitelisting and blacklisting of client applications running on hosts and end user devices. For example, it would allow administrators to specify the browsers and their versions that may or may not access the internet. This provides more granular controls that can be customized to the business needs and security posture of the organization.
Forcepoint—Delivering
Immediate Enterprise Value
Forcepoint has a new approach to enterprise security: stop the bad and free the good. Forcepoint Next-Gen Firewall is an award-winning next generation firewall that blocks malicious attacks and prevents the theft of data and intellectual property while transforming infrastructure and increasing the efficiency of your operations.
Higher Business Productivity – Forcepoint network security solutions are designed for enterprises that need always-on connectivity; they provide safe access to data that a distributed workforce needs to innovate.
Lower TCO Burdens – The unique high-availability architecture, multi-function platform and automated
centralized management of Forcepoint Next-Gen Firewall cuts operating costs, provides a longer lifetime and requires less training or specialized expertise.
Reduced IT Risk – Forcepoint Next-Gen Firewall stops potential threats, breaches and theft before they turn into financial disasters.
Simpler Compliance – Forcepoint Next-Gen Firewall maps business processes into controls and allows you to quickly respond to incidents and remediate issues—important when working with an auditor.
References 1 Gartner
2 Forcepoint Next-Gen Firewall Business Value Snapshot, IDC Research, March 2017.
“Forcepoint ticks all the boxes for our legal clients, including security,
compliance and cost.
It’s resilient, it’s secure, and it’s scalable through the range. No other
firewall has the ability to do security this well.”
— Senior Security Consultant, Netprotocol
Months Payback